OVAL Reference oval:org.opensuse.security:def:57321

Oval Definition:

oval:org.opensuse.security:def:57321

Revision Date:	2020-12-01	Version:	1
Title:	Security update for elfutils
Description:	elfutils has been updated to fix one security issue: * CVE-2014-9447: Directory traversal vulnerability in the read_long_names function in libelf/elf_begin.c in elfutils 0.152 and 0.161 allowed remote attackers to write to arbitrary files to the root directory via a / (slash) in a crafted archive, as demonstrated using the ar program (bnc#911662). Security Issues: * CVE-2014-9447
Family:	unix	Class:	patch
Status:		Reference(s):	1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1025108 1043008 1045986 1047281 1074235 1083125 1085447 1090368 1090646 1090869 1092611 1097158 1097748 1103098 1105019 1109105 1110949 1111479 1111480 1112039 1112229 1117022 1117274 1117313 1117327 1117331 1120374 1132549 1132664 1133191 1136446 1137597 1137990 1149429 1153108 1154738 1156334 1162610 1167373 1173304 876842 877642 877645 878541 886535 911662 959933 983922 CVE-2012-3386 CVE-2014-0222 CVE-2014-0223 CVE-2014-3461 CVE-2014-9447 CVE-2016-2830 CVE-2016-5289 CVE-2016-5292 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2017-1000368 CVE-2017-13166 CVE-2017-7789 CVE-2018-0732 CVE-2018-1087 CVE-2018-12115 CVE-2018-17183 CVE-2018-17456 CVE-2018-17961 CVE-2018-18073 CVE-2018-18284 CVE-2018-18386 CVE-2018-19409 CVE-2018-19475 CVE-2018-19476 CVE-2018-19477 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2018-5391 CVE-2018-8781 CVE-2018-8897 CVE-2019-10220 CVE-2019-11234 CVE-2019-11235 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-15903 CVE-2019-15917 CVE-2019-18860 CVE-2019-3846 CVE-2020-14059 CVE-2020-8597 SUSE-SU-2015:0434-1 SUSE-SU-2015:0870-1 SUSE-SU-2017:1771-1 SUSE-SU-2018:1511-1 SUSE-SU-2018:2796-1 SUSE-SU-2018:4088-1 SUSE-SU-2018:4090-1 SUSE-SU-2019:1039-1 SUSE-SU-2019:2872-1 SUSE-SU-2019:3233-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:1803-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information coreutils-8.29-lp150.2 is installed OR coreutils-lang-8.29-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information python-Django-2.2.4-lp151.2.3 is installed OR python3-Django-2.2.4-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information elfutils-0.152-4.9 is installed OR libasm1-0.152-4.9 is installed OR libdw1-0.152-4.9 is installed OR libdw1-32bit-0.152-4.9 is installed OR libebl1-0.152-4.9 is installed OR libebl1-32bit-0.152-4.9 is installed OR libelf1-0.152-4.9 is installed OR libelf1-32bit-0.152-4.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_96-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_96-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_29-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gv-3.7.4-1 is installed OR wdiff-1.2.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information giflib-progs-5.0.5-12 is installed OR libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.29 is installed OR cups-client-1.7.5-20.29 is installed OR cups-libs-1.7.5-20.29 is installed OR cups-libs-32bit-1.7.5-20.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libecpg6-10.5-1.3 is installed OR libpq5-10.5-1.3 is installed OR libpq5-32bit-10.5-1.3 is installed OR postgresql-init-10-17.20 is installed OR postgresql10-10.5-1.3 is installed OR postgresql10-contrib-10.5-1.3 is installed OR postgresql10-docs-10.5-1.3 is installed OR postgresql10-libs-10.5-1.3 is installed OR postgresql10-server-10.5-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libsqlite3-0-3.8.10.2-9.3 is installed OR libsqlite3-0-32bit-3.8.10.2-9.3 is installed OR sqlite3-3.8.10.2-9.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND nodejs6-6.14.4-11.18 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-ecdsa-0.13.3-5.10 is installed

BACK